Overview

overview

10

Static

static

5da2276e0b...9a.exe

windows7-x64

8

5da2276e0b...9a.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    5da2276e0b440db88981f1b07c8d52d029a51d558922f3f27990eac80c1e5b9a

  • Size

    361KB

  • Sample

    221129-r95c5sab97

  • MD5

    51dad325a5cb07fdd32c3f0310ac1995

  • SHA1

    2fe94f98c4ab502e623273f97e8fe203ae95e7b9

  • SHA256

    5da2276e0b440db88981f1b07c8d52d029a51d558922f3f27990eac80c1e5b9a

  • SHA512

    595f212fb50bf08bec2fb68c7c34acae62a1b6fc88195456816ff52c8be3defc4d18050f91fc099f5117726bfa14e96aefddb91f41c350b735dccf2bb23f2015

  • SSDEEP

    6144:PflfAsiL4lIJjiJcbI03GBc3ucY5DCSjX:PflfAsiVGjSGecvX

Score
10/10

Malware Config

Targets

    • Target

      5da2276e0b440db88981f1b07c8d52d029a51d558922f3f27990eac80c1e5b9a

    • Size

      361KB

    • MD5

      51dad325a5cb07fdd32c3f0310ac1995

    • SHA1

      2fe94f98c4ab502e623273f97e8fe203ae95e7b9

    • SHA256

      5da2276e0b440db88981f1b07c8d52d029a51d558922f3f27990eac80c1e5b9a

    • SHA512

      595f212fb50bf08bec2fb68c7c34acae62a1b6fc88195456816ff52c8be3defc4d18050f91fc099f5117726bfa14e96aefddb91f41c350b735dccf2bb23f2015

    • SSDEEP

      6144:PflfAsiL4lIJjiJcbI03GBc3ucY5DCSjX:PflfAsiVGjSGecvX

    Score
    10/10

    • Suspicious use of NtCreateUserProcessOtherParentProcess

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks